128bit vs 256bit SSL HTTPS communications & certificates

Discussion in 'privacy technology' started by papa1234, Oct 20, 2014.

  1. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    So, pardon my ignorance, but
    I noticed that every session with a major website like facebook/yahoo/my bank are all using Certificates with 128bit keys over SSL.

    Why is this so? I then also checked out the cipher suite prioritisation on my windows 7 machine, and noticed that quite a few 128 bit cyphers take precedence over 256bit in the list. Again, confusing. Am I wrong to presume 256bit encyption should be prioritised considering it should be theoretically safer?

    I saw someone mentioning 256bit keys for online banks but I can confirm my banks communcations are only 128 bit key encrypted. Am I totally wrong in presuming 256bit encryption is inhernetly stronger and should hence be used where possible, especially banks?


    thanks
     
  2. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,827
    Location:
    USA
    It is not the bit strength of the cypher but the implemention .
     
    Last edited: Oct 20, 2014
  3. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    Is this due to fact vulnerabilities are mostly found in the implementation and the cypher is not brute forced?
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  5. papa1234

    papa1234 Registered Member

    Joined:
    Jul 21, 2014
    Posts:
    6
    Beautiful article, been googling for something like this without success, thank you!
     
  6. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    You're welcome :).

    Another differentiating aspect is support or not for Forward Secrecy.
     
Loading...